Exit Print View

Oracle Secure Global Desktop Platform Support and Release Notes for Version 4.61

Document Information

Preface

1.  New Features and Changes

New Features in Version 4.60

Automatic Recovery After Array Failover

Dynamic Launch

Active Directory and LDAP Enhancements

Dynamic Drive Mapping

Windows Client Drive Mapping

New Attributes for Configuring Windows Applications

New Attributes for Application Load Balancing

32-Bit Color Support for Windows Applications

Allow SSH Downgrade Attribute

Span Multiple Monitors Profile Setting

New Features in Version 4.50

Introducing the SGD Gateway

Installing the SGD Gateway

Architecture of the SGD Gateway

Commands for the SGD Gateway

Application-Level Device Configuration

Array Failover

Seamless Windows Local Window Hierarchy

German Language Support

Support for Novell eDirectory

Changes in Version 4.60

Improved Clock Synchronization Reporting for Arrays

Citrix ICA Protocol Not Available for Windows Applications

Application Start Time Shown on the Webtop

User Session Idle Timeout Attribute

Web Page Security Improvements

Support for Arabic and Hebrew Keyboards

Input Method for UNIX Platform Applications

UNIX Audio and SGD Enhancement Module Version

DNS Name Warning Message

Changes to Syslog Message Format

New Default PDF Printer Driver for Windows Applications

Changes to tarantella start and tarantella stop Commands

New Name for SGD Terminal Services Client

Secure SOAP Connections No Longer Required

Changes in Version 4.50

Option to Resume Printing from My Desktop

Changes to the tarantella security enable Command

Web Services Changes

Kiosk Mode Escape Attribute

Support for Evince Document Viewer

New -remoteaudio Option For SGD Terminal Services Client

Administration Console Configuration Parameter for DNS Lookups

2.  System Requirements and Support

3.  Known Issues, Bug Fixes, and Documentation Issues

New Features in Version 4.60

This section describes the features that are new in the SGD version 4.60 release.

This section includes the following topics:

Automatic Recovery After Array Failover

This release supports automatic recovery of an array after failover.

In version 4.50, the original primary server did not rejoin the array after failover and you had to manually recreate the original array formation. In this release, the original array formation is recreated automatically by default.

The process of failover, followed by recovery of the original array formation is called array resilience. The new Global Settings -> Resilience tab in the SGD Administration Console is used to configure array resilience.

See the Oracle Secure Global Desktop 4.6 Administration Guide for more details about array resilience.

Dynamic Launch

Dynamic launch is the term used to describe runtime changes that are applied when users start applications. Typically, the runtime changes enable users to select the application server that runs the application, or to choose the application that is started, or both.

The following new object types have been introduced for dynamic launch:

The tarantella object new_host command has been extended to include support for creating dynamic application server objects.

The following commands have been introduced to create and configure dynamic application objects:

Client overrides have been extended to support dynamic launch features, such as password caching.

See the Oracle Secure Global Desktop 4.6 Administration Guide for more details about how to configure dynamic launch.

Active Directory and LDAP Enhancements

Version 4.6 contains significant enhancements and performance improvements for integrating SGD with Active Directory and Lightweight Directory Access Protocol (LDAP) directories.

For Active Directory and LDAP directories, there are enhancements to how SGD handles password expiry. SGD can now be configured to do the following:

For Active Directory, the following enhancements can be used to tune how SGD discovers LDAP information:

Other configuration settings are also provided for tuning connections to Active Directory and LDAP directories.

In previous releases, Active Directory or LDAP configuration settings applied globally. In this release, service objects have been introduced to provide more flexibility. A service object is a group of directory services configuration settings that can be applied to one or more LDAP directories or Active Directory forests. You can create and manage service objects on the Global Settings -> Service Objects tab in the SGD Administration Console, or with the new tarantella service command. The Administration Console only enables you to configure the commonly-used settings.

Most of the command-line options for filtering user logins and tuning LDAP group searches have changed. It is also now possible to filter (deny or allow) user logins based on the membership of LDAP groups.

Options have been added to the tarantella cache command to improve the caching of LDAP group data. The --populate option adds LDAP group and LDAP group membership information to the cache. The --refresh option updates the cache with the current membership of LDAP groups.

See the Oracle Secure Global Desktop 4.6 Administration Guide for details of how to use service objects to tune directory services configuration.

Dynamic Drive Mapping

This release includes support for “hot plugging” of removable storage devices during a user session. This feature is called dynamic drive mapping.

Dynamic drive mapping is enabled by default for an SGD server. To disable or enable dynamic drive mapping, use the Dynamic Drive Mapping (--array-dyndevice) attribute.

The native-cdm-config file used to configure the available drives on UNIX and Linux platform client devices now includes a list of default system locations which are monitored for removable drives. Users upgrading from earlier versions of SGD must rename their existing native-cdm-config file before connecting to the upgraded SGD server. A new native-cdm-config file containing the default system locations is created automatically when the SGD Client first connects to the upgraded server. Any custom configuration present in the backed up file can be merged with the new file.

See the Oracle Secure Global Desktop 4.6 Administration Guide for more details about array resilience.

Windows Client Drive Mapping

In this release, client drive mapping (CDM) for Windows applications is implemented using Remote Desktop Protocol (RDP) instead of the Server Message Block (SMB) protocol. As a result, you do not need to install the SGD Enhancement Module on the Windows application server to provide CDM services. Application server drive letters are no longer displayed when using CDM for Windows applications.

Windows CDM is now enabled separately from CDM for UNIX platform applications. Two new attributes, Windows Client Drive Mapping (--array-windowscdm) and Unix Client Drive Mapping (--array-unixcdm) have been introduced for this. The attributes apply to all SGD servers in the array.

A restart of CDM is not required when configuring CDM for Windows applications. Consequently, the tarantella start cdm and tarantella stop cdm commands are now only applicable to CDM for UNIX platform applications.

Ports used for connections between SGD servers and application servers have changed as follows:

The following CDM attributes have been deprecated for this release:

New Attributes for Configuring Windows Applications

New attributes have been introduced to configure Windows applications. The attributes correspond to command options for the SGD Remote Desktop Client, also known as the ttatsc command.

Previously, ttatsc command options were configured using the Arguments for Protocol (--protoargs) attribute of the Windows application object. This method is still supported for those ttatsc options that do not have a corresponding Windows application attribute.

See the Oracle Secure Global Desktop 4.6 Administration Guide for more details about the new attributes and their equivalent ttatsc command options.

New Attributes for Application Load Balancing

New application server object attributes for filtering application servers have been introduced.

The Maximum Count (--maxcount) attribute specifies the maximum number of SGD application sessions that can be run concurrently on the application server.

The User Assignment (--userassign) attribute specifies the users that can run applications on the application server.

These attributes can be used individually or together to control the application servers that can run an application for a user.

32-Bit Color Support for Windows Applications

SGD now supports 32-bit color depths in a Windows Terminal Server session.

32-bit color is available on Windows Vista, Windows Server 2008, Windows Server 2008 R2, and Windows 7 platforms. The client device must be capable of displaying 32-bit color.

Allow SSH Downgrade Attribute

In previous releases, to display X applications through SGD using an SSH connection, you had to enable X11 forwarding.

The Allow SSH Downgrade (--allowsshdowngrade) attribute for X application objects has been introduced, to enable the display of X applications when X11 forwarding is not available.

If this attribute is enabled and X11 forwarding is not working or not configured, SGD attempts to display the application using a regular unsecured X11 connection. Depending on your configuration, users might be prompted to accept the downgrade.

Span Multiple Monitors Profile Setting

A new client profile setting has been added, to provide support for displaying X applications in kiosk mode on a multihead or dual head monitor.

Enabling the Span Multiple Monitors (Kiosk Mode) setting causes the display to be spanned across all monitors.